Razy Malware Attacks Browser Extensions to Steal Cryptocurrency
The malware targets victims in multiple, sneaky ways as they move around the web. Continue reading Razy Malware Attacks Browser Extensions to Steal Cryptocurrency
Category Archives: Kaspersky Lab
Two suspected Russian hacking groups share tools and techniques, Kaspersky says
Multiple groups of suspected Russian hackers have a relationship with one another that includes sharing malicious software code and hacking techniques, according to new research. The Moscow-based security vendor Kaspersky Lab on Thursday released findings tying the espionage group GreyEnergy with Zebrocy. Zebrocy is the name researchers have given to a group affiliated with suspected Russian military hackers known as Sofacy (or Fancy Bear, or APT 28), the alleged perpetrator in the hacking the Democratic National Committee in 2016. Both groups used the same command-and-control servers — the infrastructure that allows hackers to maintain communications with compromised machines — to simultaneously to target the same organization, according to Kaspersky. They also sent similar phishing emails disguised as messages from the Ministry of the Republic of Kazakhstan within one week. Our research confirms #GreyEnergy and #Zebrocy shared the C2 server infrastructure and both targeted the same organization almost at the same time. It […]
The post Two suspected Russian hacking groups share tools and techniques, Kaspersky says appeared first on CyberScoop.
Continue reading Two suspected Russian hacking groups share tools and techniques, Kaspersky says
Critical Bug Patched in Schneider Electric Vehicle Charging Station
Vulnerability in electric car charging stations could allow attackers to compromise devices. Continue reading Critical Bug Patched in Schneider Electric Vehicle Charging Station
December 2018 Patch Tuesday: Microsoft patches Windows zero-day exploited in the wild
It’s Patch Tuesday again and, as per usual, both Microsoft and Adobe have pushed out patches for widely-used software packages. The Microsoft patches Microsoft’s December 2018 Patch Tuesday release is pretty lightweight: the company has plu… Continue reading December 2018 Patch Tuesday: Microsoft patches Windows zero-day exploited in the wild
Kaspersky: Physical devices used to steal ‘tens of millions’ from Eastern Europe banks
Banks in Eastern Europe were targeted with cyberattacks that involved the planting of physical devices on premises, according to a report from Russian cybersecurity company Kaspersky Lab published Thursday. Researchers say the attacks have resulted in “tens of millions of dollars” in damage at at least eight banks. “In some cases, it was the central office, in others a regional office, sometimes located in another country,” the report says. Kaspersky says the attacks, dubbed “DarkVishnya,” were carried out by in-person by a third party who planted devices that connect directly to the banks’ networks. The attackers used one of three tools, the researchers say: a laptop, a Raspberry Pi computer or a Bash Bunny — a USB drive-looking device specifically designed to deliver a malicious payload. Sergey Golovanov, a security expert at Kaspersky, told CyberScoop in an email that the researchers realized that physical devices were being used because of a discrepancy between the number of authorized devices versus […]
The post Kaspersky: Physical devices used to steal ‘tens of millions’ from Eastern Europe banks appeared first on Cyberscoop.
Malware Companies Are Finding New Ways to Spy on iPhones
Kaspersky Lab’s found evidence that a small spyware government contractor sells iOS malware, showing it may not be as rare as some people think. Continue reading Malware Companies Are Finding New Ways to Spy on iPhones
Ahead of Black Friday, Rash of Malware Families Takes Aim at Holiday Shoppers
As consumers skip the store crowds in favor of online deals, cyberattackers have geared up to victimize them. Continue reading Ahead of Black Friday, Rash of Malware Families Takes Aim at Holiday Shoppers
November 2018 Patch Tuesday: Microsoft fixes 63 flaws, one actively exploited zero-day
As part of the November 2018 Patch Tuesday, Microsoft has released 62 security patches and several advisories. There are 12 critical vulnerabilities among those patched this month, but CVE-2018-8589, a Windows Win32k elevation of privilege flaw that… Continue reading November 2018 Patch Tuesday: Microsoft fixes 63 flaws, one actively exploited zero-day
Why Is Antivirus Software Still a Thing?
Antivirus has been around for more than 20 years. Do you still need it to protect yourself today? Continue reading Why Is Antivirus Software Still a Thing?
Microsoft Patches Zero-Day Bug in Win7, Server 2008 and 2008 R2
Microsoft’s November Patch Tuesday fixes include mitigation against a zero-day vulnerability leaving Windows 7, Server 2008 and Server 2008 R2 open to attack. Continue reading Microsoft Patches Zero-Day Bug in Win7, Server 2008 and 2008 R2